Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-4658

Опубликовано: 07 мая 2025
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2025-4658: libtiff security update (MODERATE)

[4.0.9-34]

  • fix CVE-2017-17095: heap-based buffer overflow in pal2rgb (RHEL-87363)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

libtiff

4.0.9-34.el8_10

libtiff-devel

4.0.9-34.el8_10

libtiff-tools

4.0.9-34.el8_10

Oracle Linux x86_64

libtiff

4.0.9-34.el8_10

libtiff-devel

4.0.9-34.el8_10

libtiff-tools

4.0.9-34.el8_10

Связанные CVE

CVE-2017-17095

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2017-17095

CVSS3: 8.8
ubuntu
больше 7 лет назад

tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.

redhat логотип

CVE-2017-17095

CVSS3: 7.5
redhat
больше 7 лет назад

tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.

nvd логотип

CVE-2017-17095

CVSS3: 8.8
nvd
больше 7 лет назад

tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.

debian логотип

CVE-2017-17095

CVSS3: 8.8
debian
больше 7 лет назад

tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to ...

rocky логотип

RLSA-2025:4658

rocky
10 дней назад

Moderate: libtiff security update